Skip to content

API – User Register

Jump to bottom
Henner Renardi Setyono edited this page Oct 25, 2022 · 1 revision

The Registration form in this boilerplate requires these 2 custom endpoints to work:

  • GET /register/nonce - Get a nonce to validate request during submission
  • POST /register - Process and validate the registration

Here's the API code to be put inside your theme or plugin:

<?php
add_action('rest_api_init', 'h_init_api_register');

function h_init_api_register() {
  $namespace = 'custom/v1';

  register_rest_route($namespace, '/register/nonce', [
    'methods' => 'GET',
    'permission_callback' => '__return_true',
    'callback' => function() {
      $timestamp = current_time('U');
      $nonce = wp_create_nonce("my_register_{$timestamp}");
      return [
        'timestamp' => $timestamp,
        'nonce' => $nonce,
      ];
    }
  ]);

  register_rest_route($namespace, '/register', [
    'methods' => 'POST',
    'permission_callback' => '__return_true',
    'callback' => function($request) {
      $params = wp_parse_args($request->get_params(), [
        'first_name' => '',
        'last_name' => '',
        'user_email' => '',
        'user_pass' => '',
        'user_pass_confirm' => null,
        
        'acf_gender' => '', // If you have ACF field, prefix it with "acf_"
        'acf_job' => '',
        'timestamp' => null,
        '_wpnonce' => null,
      ]);

      // If $params has invalid nonce, reject the request
      if (!wp_verify_nonce($params['_wpnonce'], "my_register_{$params['timestamp']}")) {
        return new WP_Error('invalid_request', __('Invalid registration request, please refresh your page.'));
      }

      if (!$params['user_email']) {
        return new WP_Error('user_email', __('Email address cannot be empty'));
      }
      
      if (email_exists($params['user_email'])) {
        return new WP_Error('user_email', __('Your email is already registered'));
      }

      if (strlen($params['user_pass']) < 6) {
        return new WP_Error('user_pass', __('Password should be at least 6 characters'));
      }

      if ($params['user_pass'] !== $params['user_pass_confirm']) {
        return new WP_Error('user_pass_confirm', __('Your password confirmation is different'));
      }

      // Auto generate username
      $username = sanitize_user($params['first_name']);
      $count = null;
      while (username_exists($username . $count)) {
        $count += 1;
      }
      $username .= $count;
      
      // Create User
      $user_id = wp_insert_user([
        'first_name' => $params['first_name'],
        'last_name' => $params['last_name'],
        'user_email' => $params['user_email'],
        'user_pass' => $params['user_pass'],
        'user_login' => $username,
        'display_name' => $params['first_name'] . ' ' . $params['last_name'],
      ]);

      if (is_wp_error($user_id)) {
        return $user_id;
      }

      // Add in ACF field
      foreach ($params as $key => $value) {
        if (str_contains($key, 'acf')) {
          $field = str_replace('acf_', '', $key);
          update_field($field, $value, "user_{$user_id}");
        }
      }

      return $user_id;
    }
  ]);
}

ACF Integration

The Register API above will save all parameters that start with acf_ as an ACF Field.

But you need to manually add the fields into ViewRegister.vue just like our sample code at ViewRegister.vue

All ACF's Validation won't work too. So you need to check that manually.

Clone this wiki locally